Running system in tmpfs or with readonly root
Hello! I currently use an old laptop with 768mb ram as my router running hardened gentoo.
Since I do not trust the old harddrive, I created an initrd that squashes the root filesystem onto tmpfs then runs off of that. This also has the added bonus that if the computer ever crashes(Or power is lost) I don't have to worry about a corrupt filesystem.
Now i'm considering switching to openbsd. Partly because i'm curious, and partly because keeping gentoo updated is a lot of work.
The only software I will use is: openvpn,sshd,squid(transparent if possible. Only used for caching),rsyslog(remote logging),ntpd,tmux,dhcpcd(or any alternative..) and finally cron.
How would you recommend I set this up? If I can't run the whole system in tmpfs, can I do it with read-only root? I'm also curious about running all the services in a guest os.
Any input is much appreciated. Thank you!
|